afdc138987
This patch allows the management of the AuditD service and its associated files (such as `audit.rules`) This is achieved by means of the `puppet-auditd` puppet module. Also places ssh banner capabilities map on top of patch Change-Id: Ib8bb52dde88304cb58b051bced9779c97a314d0d Depends-On: Ie31c063b674075e35e1bfa28d1fc07f3f897407b
35 lines
923 B
YAML
35 lines
923 B
YAML
heat_template_version: ocata
|
|
|
|
description: >
|
|
AuditD configured with Puppet
|
|
|
|
parameters:
|
|
ServiceNetMap:
|
|
default: {}
|
|
description: Mapping of service_name -> network name. Typically set
|
|
via parameter_defaults in the resource registry. This
|
|
mapping overrides those in ServiceNetMapDefaults.
|
|
type: json
|
|
DefaultPasswords:
|
|
default: {}
|
|
type: json
|
|
EndpointMap:
|
|
default: {}
|
|
description: Mapping of service endpoint -> protocol. Typically set
|
|
via parameter_defaults in the resource registry.
|
|
type: json
|
|
AuditdRules:
|
|
description: Mapping of auditd rules
|
|
type: json
|
|
default: {}
|
|
|
|
outputs:
|
|
role_data:
|
|
description: Role data for the auditd service
|
|
value:
|
|
service_name: auditd
|
|
config_settings:
|
|
auditd::rules: {get_param: AuditdRules}
|
|
step_config: |
|
|
include ::tripleo::profile::base::auditd
|